SSO - Support in Taurus-PROTECT

SSO (Single sign-on) is an authentication scheme that allows users to use independent applications while using a single login ID. It allows for a usage of Taurus-PROTECT as an SP (Service Provider) using an external IdP (Identity Provider) such as Okta or Azure AD.

We support two identity authentication protocols for the communication between the IdP and the SP (Taurus-PROTECT).

OIDC (OpenID Connect)
SAML (Security Assertion Markup Language)

Taurus-Protect also supports the SCIM (System for Cross-domain Identity Management) specification for users management. This makes it possible to handle the Taurus-PROTECT users lifecycle directly from the IdP (automatic creation/update/delete) as well as for groups/roles on a global level.

❗️
Important
It is highly recommended to have a good understanding of the Taurus-PROTECT users lifecycle, key management, its operating model design and have some experience using the product without SSO before making any integration.